--- - name: Check for specified PostgreSQL configuration k8s_info: kind: Secret namespace: '{{ ansible_operator_meta.namespace }}' name: '{{ postgres_configuration_secret }}' register: _custom_pg_config_resources when: postgres_configuration_secret | length no_log: "{{ no_log }}" - name: Check for default PostgreSQL configuration k8s_info: kind: Secret namespace: '{{ ansible_operator_meta.namespace }}' name: '{{ ansible_operator_meta.name }}-postgres-configuration' register: _default_pg_config_resources no_log: "{{ no_log }}" - name: Check for specified old PostgreSQL configuration secret k8s_info: kind: Secret namespace: '{{ ansible_operator_meta.namespace }}' name: '{{ old_postgres_configuration_secret }}' register: _custom_old_pg_config_resources when: old_postgres_configuration_secret | length no_log: "{{ no_log }}" - name: Check for default old PostgreSQL configuration k8s_info: kind: Secret namespace: '{{ ansible_operator_meta.namespace }}' name: '{{ ansible_operator_meta.name }}-old-postgres-configuration' register: _default_old_pg_config_resources no_log: "{{ no_log }}" - name: Set old PostgreSQL configuration set_fact: # yamllint disable-line rule:line-length old_pg_config: '{{ _custom_old_pg_config_resources["resources"] | default([]) | length | ternary(_custom_old_pg_config_resources, _default_old_pg_config_resources) }}' # noqa 204 - name: Set proper database name when migrating from old deployment set_fact: database_name: "{{ old_pg_config['resources'][0]['data']['database'] | b64decode }}" database_username: "{{ old_pg_config['resources'][0]['data']['username'] | b64decode }}" when: - old_pg_config['resources'] is defined - old_pg_config['resources'] | length no_log: "{{ no_log }}" - name: Set default postgres image set_fact: _default_postgres_image: "{{ _postgres_image }}:{{_postgres_image_version }}" - name: Set PostgreSQL configuration set_fact: _pg_config: '{{ _custom_pg_config_resources["resources"] | default([]) | length | ternary(_custom_pg_config_resources, _default_pg_config_resources) }}' no_log: "{{ no_log }}" - name: Set user provided postgres image set_fact: _custom_postgres_image: "{{ postgres_image }}:{{ postgres_image_version }}" when: - postgres_image | default([]) | length - postgres_image_version is defined and postgres_image_version != '' - name: Set Postgres image URL set_fact: _postgres_image: "{{ _custom_postgres_image | default(lookup('env', 'RELATED_IMAGE_AWX_POSTGRES')) | default(_default_postgres_image, true) }}" - block: - name: Create Database configuration k8s: apply: true definition: "{{ lookup('template', 'secrets/postgres_secret.yaml.j2') }}" no_log: "{{ no_log }}" - name: Read Database Configuration k8s_info: kind: Secret namespace: '{{ ansible_operator_meta.namespace }}' name: '{{ ansible_operator_meta.name }}-postgres-configuration' register: _generated_pg_config_resources no_log: "{{ no_log }}" when: not _pg_config['resources'] | default([]) | length - name: Set PostgreSQL Configuration set_fact: pg_config: '{{ _generated_pg_config_resources["resources"] | default([]) | length | ternary(_generated_pg_config_resources, _pg_config) }}' no_log: "{{ no_log }}" - name: Set actual postgres configuration secret used set_fact: __postgres_configuration_secret: "{{ pg_config['resources'][0]['metadata']['name'] }}" - name: Store Database Configuration set_fact: awx_postgres_user: "{{ pg_config['resources'][0]['data']['username'] | b64decode }}" awx_postgres_pass: "{{ pg_config['resources'][0]['data']['password'] | b64decode }}" awx_postgres_database: "{{ pg_config['resources'][0]['data']['database'] | b64decode }}" awx_postgres_port: "{{ pg_config['resources'][0]['data']['port'] | b64decode }}" awx_postgres_host: "{{ pg_config['resources'][0]['data']['host'] | b64decode }}" awx_postgres_sslmode: "{{ pg_config['resources'][0]['data']['sslmode'] | default('prefer'|b64encode) | b64decode }}" awx_postgres_target_session_attrs: "{{ pg_config['resources'][0]['data']['target_session_attrs'] | default('') | b64decode }}" no_log: "{{ no_log }}" - name: Set database as managed set_fact: managed_database: "{{ pg_config['resources'][0]['data']['type'] | default('') | b64decode == 'managed' }}" # It is possible that N-2 postgres pods may still be present in the namespace from previous upgrades. # So we have to take that into account and preferentially set the most recent one. - name: Get the old postgres pod (N-1) k8s_info: kind: Pod namespace: "{{ ansible_operator_meta.namespace }}" field_selectors: - status.phase=Running register: _running_pods - block: - name: Filter pods by name set_fact: filtered_old_postgres_pods: "{{ _running_pods.resources | selectattr('metadata.name', 'match', ansible_operator_meta.name + '-postgres.*-0') | rejectattr('metadata.name', 'search', '-' + supported_pg_version | string + '-0') | list }}" # Sort pods by name in reverse order (most recent PG version first) and set - name: Set info for previous postgres pod set_fact: sorted_old_postgres_pods: "{{ filtered_old_postgres_pods | sort(attribute='metadata.name') | reverse | list }}" when: filtered_old_postgres_pods | length - name: Set info for previous postgres pod set_fact: old_postgres_pod: "{{ sorted_old_postgres_pods | first }}" when: filtered_old_postgres_pods | length when: _running_pods.resources | length - name: Look up details for this deployment k8s_info: api_version: "{{ api_version }}" kind: "{{ kind }}" name: "{{ ansible_operator_meta.name }}" namespace: "{{ ansible_operator_meta.namespace }}" register: this_awx # If this deployment has been upgraded before or if upgrade has already been started, set this var - name: Set previous PG version var set_fact: _previous_upgraded_pg_version: "{{ this_awx['resources'][0]['status']['upgradedPostgresVersion'] | default(false) }}" when: - this_awx['resources'][0] is defined - "'upgradedPostgresVersion' in this_awx['resources'][0]['status']" - name: Check if postgres pod is running an older version block: - name: Get old PostgreSQL version k8s_exec: namespace: "{{ ansible_operator_meta.namespace }}" pod: "{{ old_postgres_pod['metadata']['name'] }}" command: | bash -c """ if [ -f "{{ _postgres_data_path }}/PG_VERSION" ]; then cat "{{ _postgres_data_path }}/PG_VERSION" elif [ -f '/var/lib/postgresql/data/pgdata/PG_VERSION' ]; then cat '/var/lib/postgresql/data/pgdata/PG_VERSION' fi """ register: _old_pg_version - debug: msg: "--- Upgrading from {{ old_postgres_pod['metadata']['name'] | default('NONE')}} Pod ---" - name: Upgrade data dir from old Postgres to {{ supported_pg_version }} if applicable include_tasks: upgrade_postgres.yml when: - (_old_pg_version.stdout | default(0) | int ) < supported_pg_version when: - managed_database - (_previous_upgraded_pg_version | default(false)) | ternary(_previous_upgraded_pg_version | int < supported_pg_version, true) - old_postgres_pod | length # If empty, then old pg pod has been removed and we can assume the upgrade is complete - block: - name: Create Database if no database is specified k8s: apply: true definition: "{{ lookup('template', 'statefulsets/postgres.yaml.j2') }}" register: create_statefulset_result - name: Scale down Deployment for migration include_tasks: scale_down_deployment.yml when: create_statefulset_result.changed rescue: - name: Scale down Deployment for migration include_tasks: scale_down_deployment.yml - name: Scale down PostgreSQL statefulset for migration kubernetes.core.k8s_scale: api_version: apps/v1 kind: StatefulSet name: "{{ ansible_operator_meta.name }}-postgres-{{ supported_pg_version }}" namespace: "{{ ansible_operator_meta.namespace }}" replicas: 0 wait: yes - name: Remove PostgreSQL statefulset for upgrade k8s: state: absent api_version: apps/v1 kind: StatefulSet name: "{{ ansible_operator_meta.name }}-postgres-{{ supported_pg_version }}" namespace: "{{ ansible_operator_meta.namespace }}" wait: yes when: create_statefulset_result.error == 422 - name: Recreate PostgreSQL statefulset with updated values k8s: apply: true definition: "{{ lookup('template', 'statefulsets/postgres.yaml.j2') }}" when: managed_database - name: Set Default label selector for custom resource generated postgres set_fact: postgres_label_selector: "app.kubernetes.io/instance=postgres-{{ supported_pg_version }}-{{ ansible_operator_meta.name }}" when: postgres_label_selector is not defined - name: Get the postgres pod information k8s_info: kind: Pod namespace: "{{ ansible_operator_meta.namespace }}" label_selectors: - "{{ postgres_label_selector }}" field_selectors: - status.phase=Running register: postgres_pod - name: Wait for Database to initialize if managed DB k8s_info: kind: Pod namespace: '{{ ansible_operator_meta.namespace }}' label_selectors: - "{{ postgres_label_selector }}" field_selectors: - status.phase=Running register: postgres_pod until: - "postgres_pod['resources'] | length" - "postgres_pod['resources'][0]['status']['phase'] == 'Running'" - "postgres_pod['resources'][0]['status']['containerStatuses'][0]['ready'] == true" delay: 5 retries: 60 when: managed_database - name: Look up details for this deployment k8s_info: api_version: "{{ api_version }}" kind: "{{ kind }}" name: "{{ ansible_operator_meta.name }}" namespace: "{{ ansible_operator_meta.namespace }}" register: this_awx - name: Migrate data from old Openshift instance import_tasks: migrate_data.yml when: - old_pg_config['resources'] is defined - old_pg_config['resources'] | length - this_awx['resources'][0]['status']['migratedFromSecret'] is not defined